25 Jul 2023
By Mary

InfoSec News Nuggets 07/25/2023

Novel Open Source Supply Chain Attacks Target Banking Sector  Application security provider Checkmarx has identified what it described as the first open source software supply chain attacks targeting the banking sector. In a recent report, Checkmarx researchers analyzed two distinct, sophisticated supply chain attacks relying on open source toolsets. Both attacks’ targets were banks. The first attack started in February 2023, when a threat actor uploaded a package to NPM, the world’s largest software registry. This package contained a payload designed to latch…
Read More
09 Dec 2022
By Mary

InfoSec News Nuggets 12/09/2022

Metropolitan Opera dealing with cyberattack that shut down website, box office The Metropolitan Opera confirmed that it is dealing with a crippling cyberattack that has shut down their website and box office. The New York-based opera house said on Wednesday evening that the cyberattack impacted their network systems, including their “website, box office, and call center.” While all performances will continue as scheduled, the organization is unable to process new ticket orders or provide exchanges…
Read More